Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3137362e302f32342d3234203d3e203338343936.roa
File: 3230322e38372e3137362e302f32342d3234203d3e203338343936.roa (raw, json)
Hash identifier: o+1mA9CRQhDsiZg0+3LtbOwzqjfEGxJQXtIhxSA+cOs=
Subject key identifier: 8E:74:75:C0:11:2A:18:1D:CB:7F:EF:78:4A:8D:F9:72:69:87:51:4C
Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC
Certificate serial: 70C3DC2B00AA41B1A2D34CF43F1AD6807116902F
Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3137362e302f32342d3234203d3e203338343936.roa
Signing time: Sat 08 Mar 2025 04:02:23 +0000
ROA not before: Sat 08 Mar 2025 03:57:23 +0000
ROA not after: Sat 07 Mar 2026 04:02:23 +0000
asID: 38496
IP address blocks: 202.87.176.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:c3:dc:2b:00:aa:41:b1:a2:d3:4c:f4:3f:1a:d6:80:71:16:90:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC
Validity
Not Before: Mar 8 03:57:23 2025 GMT
Not After : Mar 7 04:02:23 2026 GMT
Subject: CN=8E7475C0112A181DCB7FEF784A8DF9726987514C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ee:68:b2:80:b4:57:e4:5d:bc:89:bb:dd:47:
f0:9d:e4:7f:8f:46:9a:b1:b5:17:81:71:72:13:02:
20:56:e4:75:1b:e5:0f:0a:a4:9f:5a:42:9c:ad:36:
63:84:a5:9d:ea:53:c9:84:d9:d9:e5:8b:5a:ec:f6:
54:a7:c1:d2:aa:fe:0a:ec:fa:b3:c7:0a:4a:d9:8a:
df:5d:b1:0f:ce:d0:53:28:5b:9e:5f:ba:89:00:a5:
9a:2d:8a:59:ff:e3:96:ed:9a:57:0f:09:2f:e3:f7:
65:ce:3c:60:8b:b1:c3:77:81:63:50:af:e4:23:e2:
7a:d0:5c:5c:5e:e9:5e:7b:07:ae:5f:3a:de:ea:66:
5b:be:e3:42:0c:ea:13:51:0a:af:5d:71:76:04:a9:
1c:95:fc:a5:63:5a:e2:20:2b:6e:84:70:33:d3:a7:
c8:5b:a2:bb:ec:da:fa:24:75:2d:df:fc:79:7d:d3:
9f:ab:c3:27:34:38:1c:86:11:e7:36:72:98:4b:51:
ce:4e:87:a4:69:64:d2:a4:b9:4f:5c:a6:97:08:e4:
2b:a8:a6:97:ef:e8:e7:b9:c5:ce:d6:60:56:f9:5c:
a0:56:1c:fb:be:44:76:7b:68:0b:d2:a2:b5:37:c2:
73:75:46:d4:d3:93:db:88:70:56:5a:be:19:0b:04:
8a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:74:75:C0:11:2A:18:1D:CB:7F:EF:78:4A:8D:F9:72:69:87:51:4C
X509v3 Authority Key Identifier:
keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3230322e38372e3137362e302f32342d3234203d3e203338343936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.87.176.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:4e:91:68:1a:62:1a:a2:35:5f:bd:4d:ba:cb:f0:8b:db:96:
66:c6:26:c3:92:47:f7:bd:e8:bf:ef:6e:85:2d:76:b4:57:54:
a5:04:ee:f6:f5:e1:9e:c6:56:ff:a4:2b:da:4e:45:9c:ad:49:
ce:71:d8:bc:19:bd:9f:d3:8f:af:f4:1e:99:67:0d:ba:59:ea:
a0:15:35:43:18:94:04:05:a4:69:18:91:2c:e6:e1:69:90:09:
8e:8d:b9:6b:60:03:0c:39:07:b9:59:3f:1e:c5:36:43:80:04:
19:87:a2:26:80:6c:00:d7:cb:4d:1e:78:ea:c3:71:8e:6e:6e:
00:bc:65:74:bd:fe:48:48:fc:10:ac:63:8c:78:16:b2:8a:e0:
24:8d:6c:a0:75:39:e9:af:e8:15:71:23:fe:44:75:4a:03:67:
de:53:b0:d5:34:bd:fa:b3:c1:77:1a:72:b3:36:4b:f9:43:be:
f0:4e:d3:15:a1:ea:e6:49:41:cb:7b:ae:81:df:5a:8b:92:89:
ce:e0:18:41:72:12:1a:72:10:b3:7a:14:65:76:fb:d4:b1:11:
27:0f:64:fb:57:ba:6b:65:46:8b:e6:4e:35:fc:5c:8b:d1:42:
0d:74:cb:19:d5:a4:9d:69:4c:b7:07:5b:77:b9:4a:a0:21:9d:
e7:1f:de:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:50:48 2025 by rpki-client